Boo

Today, on my 42nd birthday, I found out that a misconfigured firewall at $WORK had been participating in a DDOS attack. It was running an NTP server that was open to all, and the firewall rules I'd thought were set to default-deny were not. It's a crappy way to start your workday.

I'm trying to take more from it than just "Oh shit, I fucked up." Complexity of setup, proper use of nmap, trust-but-verify, distributed monitoring, etc. But I'm still working my way through that sinking feeling right now.